Syntax ENAble RELease=release-name [PASSword=password]
NUMber=release-number where:
■ release-name is the name of a release file, in the device:]filename.ext format.
Invalid characters are * + = “| \ [ ] ; : ? / , < >, and wildcards are not allowed. Valid characters are:
• uppercase and lowercase letters
• digits
• ~ ’ ! @ # $ % ^ & ( ) _ - { }
■ password is the password to licence this release, expressed as a string of hexadecimal characters (A–F, 0–9). It is not case sensitive.
■ release-number is the release number for this release.
Description This command enables a release file.
The release parameter specifies the name of the release file. If a device is not specified, the default is flash.
The password parameter specifies the password for this release, encoded as a sequence of hexadecimal digits. The password is supplied by your authorised distributor or reseller if required, and is specific to a particular switch serial number. The password enables the release with either a full licence or a 30-day licence.
The number parameter specifies the software version for the release file being licenced. This is entered in dotted decimal form, for example 2.6.1.
Examples To enable version 54-261.rez with the password CE645398FBE for software version 2.6.1, use the command:
ena rel=54-261.rez pass=ce645398fbe num=2.6.1
Related Commands disable release show release
load
Syntax LOAd [METhod=TFtp] [DELay=delay] [DESTFile=destfilename]
[DEStination=FLash] [{FIle|SRCFile}=filename]
LOAd [METhod=ZModem] [ASYn=port] [DELay=delay]
[DESTFile=destfilename] [DEStination=FLash]
LOAd [METhod=NONE] [ASYn=port] [DELay=delay]
[DESTFile=destfilename] [DEStination=FLash]
[{FIle|SRCFile}=filename]
LOAd [METhod=SCP] [DELay=delay] [DESTFile=destfilename]
[DEStination={CFlash|FLash|NVs}]
[{FIle|SRCFile}=filename]
[{KEYid=key-id|PASSword=password}]
[SErver={hostname|ipadd|ipv6add}] [USERName=username]
where:
■ delay is a time delay in seconds.
■ hostname is a string 1 to 40 characters long.
■ ipadd is an IP address in dotted decimal notation.
■ filename is a string 1 to 256 characters long. This is a full path name for the file to load, in the syntax of the server from which the file is loaded.
■ destfilename is a character string 5 to 20 characters long specifying the name of the destination file in the switch file system.
■ dist-name is an X.500 distinguished name, as described in “Distinguished names (DN)” on page 29-4 of Chapter 29, Public Key Infrastructure (PKI).
■ key-id is a decimal ID number of an encryption key used for authentication.
■ password is a string 1 to 60 characters long that is used for basic server authentication.
■ port is the number of an asynchronous port. Ports are numbered sequentially starting with asyn0.
■ username is a string 1 to 60 characters long that is used for basic server authentication.
5-32 load AlliedWare OS Software Reference
Description This command downloads a file to the switch using one of the following:
• Trivial File Transfer Protocol (TFTP)
• HyperText Transfer Protocol (HTTP)
• Lightweight Directory Access Protocol (LDAP)
• Secure Copy (SCP)
• ZMODEM
• direct input from an asynchronous port
Parameters not specified use the defaults set with the set loader command on page 5-42. Some parameters are invalid or have different meanings depending on the method used to download the file. This command requires a user with security officer privilege when the switch is in security mode.
Caution While flash is compacting, do not restart the switch or use commands that affect the flash file system such as create, edit, load, rename, or delete. Wait until you get a message that file compaction is complete. Interrupting flash compaction may damages files.
The asyn parameter specifies the asynchronous port via which the file is to be downloaded when the method parameter is set to zmodem or none. The asyn parameter is not valid when method is set to http, web, www, ldap, scp, or tftp. If method is set to zmodem or none, the asyn parameter is required unless it has been already set with the set loader command on page 5-42.
The attribute parameter defines a keyword specifying the type of object to retrieve from an LDAP repository. A list of currently recognised keywords and their respective object types are in the following table.
The baseobject parameter specifies the repository location of the object to load, in the LDAP distinguished name format, and is required if the load method is LDAP. If the string contains spaces, it must be in double quotes. The special characters {, = + < > # ; \ <CR> } must be escaped by typing a \ before the character, as defined in RFC 1779, unless they are used for their prescribed purpose. For example, to include a \ in the string, type \\ and to include a #, type \#.
The delay parameter specifies the delay in seconds between initiating the file download and the download actually starting. This feature allows
reconfiguration of ports and devices after initiating the download. For example, a manager may be at a remote site with a single PC that is to act as both the access device to the switch and the TFTP server. By specifying a delay, the manager has time to reconfigure the PC from terminal emulation mode to TFTP server mode before the download starts. The delay parameter is optional.
The destfile parameter specifies the name of the destination file in the switch file system. When method is set to LDAP, the extension of the destination file must be valid for the type of object being loaded (either cer, crl, or csr).
When using the HTTP method and a destfile is necessary, it must be present on the command line when the file or srcfile parameter is present or it has no effect.
Keyword Object Type
cert userCertificate
crl certificateReservationList
cacert cACertificate
The destination parameter specifies where the file is to be stored. Only flash is valid and the file is stored in the Flash File System (FFS) on the switch. If destination is not specified, and has not been set with the set loader command on page 5-42, the default is flash.
The httpproxy parameter specifies the proxy server used to handle HTTP requests. Either the IP address or the fully qualified domain name of the proxy server may be specified. If a domain name is specified, the switch performs a DNS lookup to resolve the name.
The keyid parameter specifies the ID number of a RSA private or public key that is held on the switch. This parameter is only valid when using SCP. The server receiving the load request must have the public key for this
authentication to work.
The method parameter specifies the method to use when downloading the file.
If http is specified, HTTP is used to download the file. The options web and www are synonyms for http. If ldap is specified, LDAP is used to download the file. If tftp is specified, TFTP is used to download the file. If scp is specified, SCP is used to download the file. If zmodem is specified, the ZMODEM protocol is used to download the file. If none is specified, text files can be downloaded and all input received via the port is directed to the specified file on the switch’s file subsystem. The file transfer is terminated by the first control character received that is not a CR or LF character. The default is tftp, unless another method has been specified using the set loader command on page 5-42. The following table shows the different load methods and the required parameters for each method. You can specify the required parameters with either the load or set loader command.
The password parameter specifies the password for the LDAP, HTTP or SCP methods if server authentication is required. As the password is typed it appears as plain text on the screen, so it should only be used in a secure area.
The proxyport parameter specifies the port on a proxy server. The proxyport parameter is valid when using HTTP, if httpproxy is specified. The default is 80.
The server parameter specifies the IP address or the host name (a fully
qualified domain name) of the HTTP, LDAP or TFTP server from which the file is loaded. If a host name is specified, a DNS lookup is used to translate this to an IP address. See set ip nameserver command on page 13-118 of Chapter 13, Internet Protocol (IP) for more information about setting up name servers. The ping command on page 13-95 of Chapter 13, Internet Protocol (IP) can be used to verify that the switch can communicate with the server via IP. The server parameter is required if method is http, ldap, scp, or tftp unless it has been set by the set loader command on page 5-42. The server parameter is not valid Method Other required parameters
TFTP server and either file or srcfile
HTTP, WWW, or web method, server, and either file or srcfile
ZMODEM method, asyn
SCP method, either file or srcfile, server, username, and either keyid or password
LDAP method, server, baseobject, and destfile CFLASH method and either file or srcfile
none method, asyn, and either file or srcfile
5-34 load AlliedWare OS Software Reference
when method is set to zmodem or none. The following are examples of valid server names for the HTTP or LDAP method:
host.company.com 192.168.3.4
The servport parameter optionally specifies the port on the HTTP or LDAP server from which the file is loaded. If this is not specified (or is specified using the default keyword) and no default has been set using the set loader
command, a default is invoked according to the current load method. In this case, servport takes a value of 80 for HTTP, and 389 for LDAP.
The srcfile or file parameter specifies the name of the file in the syntax of the server from which the file is to be downloaded. For load methods other than LDAP and ZMODEM, this parameter is required unless it has been set with the set loader command on page 5-42. It can be a full path name rather than just a filename. The only restriction is that the last part of the file parameter must be a valid filename for the loader. Starting at the end of the filename and working backwards, the first character not valid in filenames delimits a valid filename for the switch. If the slash at the beginning of the path is omitted in this command, the load command adds it. The following are examples of valid filenames:
/path/filename.ext path/filename.ext
The username parameter specifies the username for the scp, ldap or http methods when server authentication is required.
Examples To download a release using the defaults set previously with the set loader command on page 5-42, use the command:
loa
To download the 28-761.rez version into the Flash File System from a TFTP server with IP address 172.16.8.5, use the command:
loa fi=28-761.rez se=172.16.8.5
In this example, the switch is downloading the file abc.cfg from a SCP server with the IP address 172.16.8.5. The user has the username “john” and the password “secret” on the server. To download the file and save it as abc.cfg in flash memory, use this command:
loa met=scp fi=/downloads/abc.cfg se=172.16.8.5 des=fl usern=john pass=secret
To load a file from asynchronous port 1 by using the ZMODEM protocol, use the command:
loa met=zmodem asy=1
To download reallylongfile.rez into the flash memory from a TFTP server with IP address 172.16.8.5, use the command:
loa fi=reallylongfile.rez se=172.16.8.5
The filename is similar to really~1.rez and saved to flash memory. All consequent edition, display, and upload reconciliations are completed by consulting the longname.lfn table file. This table provides either the name reallylong.rez or really~1.rez as a valid ID for file management.
To download reallylongfile.rez and save it as temporary.rez into flash memory from a TFTP server with IP address 172.16.8.5, use the command:
loa fi=reallylongfile.rez se=172.16.8.5 destf=temporary.rez
The filename is tempor~1.rez and the file is saved to flash memory. All consequent edition, display, and upload reconciliations are completed by consulting the longname.lfn table file. This table provides either the name temporary.rez or tempor~1.rez as a valid ID for file management.
Related Commands set loader show loader upload
5-36 purge ldap AlliedWare OS Software Reference